1967148 – Test/document use of 512 bit volume encryption keys

Bug 1967148 - Test/document use of 512 bit volume encryption keys [NEEDINFO]

Summary: Test/document use of 512 bit volume encryption keys

Keywords:
Status:	NEW
Alias:	None
Product:	Red Hat OpenStack
Classification:	Red Hat
Component:	openstack-cinder
Sub Component:
Version:	16.2 (Train)
Hardware:	Unspecified
OS:	Unspecified
Priority:	medium
Severity:	medium
Target Milestone:	---
Target Release:	---
Assignee:	Eric Harney
QA Contact:	Evelina Shames
Docs Contact:	Andy Stillman
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2021-06-02 13:58 UTC by Eric Harney
Modified:	2023-08-03 15:46 UTC (History)
CC List:	3 users (show)
Fixed In Version:
Doc Type:	Enhancement
Doc Text:
Clone Of:
Environment:
Last Closed:
Target Upstream Version:
Embargoed:
Flags:	ifrangs: needinfo? (eharney)

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	OSP-4351	0	None	None	None	2022-10-03 18:22:09 UTC

Description Eric Harney 2021-06-02 13:58:05 UTC

https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/16.1/html/storage_guide/ch-cinder#section-volumes_advanced_encryption

The storage guide currently documents use of 256 bit encryption keys.

Barbican now allows us to store 512 bit keys when using aes-xts, which we should support for Cinder volumes in OSP:  https://review.opendev.org/c/openstack/barbican/+/577096

Note You need to log in before you can comment on or make changes to this bug.